===========================================================================
SCO Security Bulletin 2000.03
20th March 2000
rtpm security patch
---------------------------------------------------------------------------
I. Description
Two security holes are closed with this new version of rtpm. Both
could lead to local system compromises if left open.
Both security holes were bufffer overflow exploits in user input.
One was from the environment and the other was from the command line.
NOTE: This is revision 'b' of SB-00.03. There is a new patch
available to close new holes in rtpm. The links below point to
updated patches that should be installed even if the patches
referenced in SB-00.03a have been installed.
II. Impact
Without this patch systems are vulnerable to local
system intrusions via this security hole.
III. Releases
UnixWare 7.0 through 7.1.1
SSE056 - UnixWare 7.0
SSE057 - UnixWare 7.0.1
SSE058 - UnixWare 7.1.0
SSE059 - UnixWare 7.1.1
IV. Solution
SCO is providing an interim patch to address this issue in the form of a
System Security Enhancement (SSE) package.
SSE056 contains a replacement binary for UnixWare 7.0, and is
available for Internet download via anonymous ftp and http.
You can download the SSE package as follows:
Anonymous ftp (World Wide Web URL):
ftp://ftp.sco.COM/SSE/sse056.ltr (cover letter, ASCII text)
ftp://ftp.sco.COM/SSE/sse056.tar.Z (new binaries, compressed tar file)
SSE057 contains a replacement binary for UnixWare 7.0.1, and is
available for Internet download via anonymous ftp and http.
You can download the SSE package as follows:
Anonymous ftp (World Wide Web URL):
ftp://ftp.sco.COM/SSE/sse057.ltr (cover letter, ASCII text)
ftp://ftp.sco.COM/SSE/sse057.tar.Z (new binaries, compressed tar file)
SSE058 contains replacement binaries for UnixWare 7.1.0, and is
available for Internet download via anonymous ftp and http.
You can download the SSE package as follows:
Anonymous ftp (World Wide Web URL):
ftp://ftp.sco.COM/SSE/sse058.ltr (cover letter, ASCII text)
ftp://ftp.sco.COM/SSE/sse058.tar.Z (new binaries, compressed tar file)
SSE059 contains a replacement binary for UnixWare 7.1.1, and is
available for Internet download via anonymous ftp and http.
You can download the SSE package as follows:
Anonymous ftp (World Wide Web URL):
ftp://ftp.sco.COM/SSE/sse059.ltr (cover letter, ASCII text)
ftp://ftp.sco.COM/SSE/sse059.tar.Z (new binaries, compressed tar file)
Checksums (sum -r):
37248 3 sse056.ltr
60138 441 sse056.tar.Z
43319 3 sse057.ltr
22733 444 sse057.tar.Z
10621 3 sse058.ltr
52521 517 sse058.tar.Z
21776 3 sse059.ltr
44213 451 sse059.tar.Z
V. Updates
This bulletin is available for anonymous ftp download from
ftp://ftp.sco.COM/SSE/security_bulletins/SB-00.03b, and will be
updated as new information becomes available.
The latest information on security vulnerabilities and fixes from
SCO is available on the world-wide web at http://www.sco.com/security/
VI. Further Information:
If you have further questions, contact your support provider. If you
need to contact SCO, please send electronic mail to support@sco.COM, or
contact SCO as follows.
USA/Canada: 6am-5pm Pacific Time (PST/PDT)
-----------
1-800-347-4381 (voice)
1-408-427-5443 (fax)
Pacific Rim, Asia, and Latin American customers: 6am-5pm Pacific
------------------------------------------------ Time (PST/PDT)
1-408-425-4726 (voice)
1-408-427-5443 (fax)
Europe, Middle East, Africa: 9am-5:30pm UK Time (GMT/BST)
----------------------------
+44 (0)1923 816344 (voice)
+44 (0)1923 817781 (fax)
Credit:
SCO would like to think kun@fiskus.islub.lublin.pl for bringing
this security hole to our attention.